Lucene search
K

931 matches found

ATTACKERKB
ATTACKERKB
added yesterday3 views

CVE-2026-54430

liboauth2 is vulnerable to Server-Side Request Forgery in oauth2josejwksawsalbresolve function. The AWS ALB verifier reads both signer and kid from the unverified JWT header. If signer matches the configured ARN, kid is appended to albbaseurl without URL encoding or path sanitization, and the HTT...

5.1CVSS5.8AI score
Exploits0References4
Cvelist
Cvelist
added yesterday17 views

CVE-2026-54430 Server-Site Request Forgery in liboauth2

liboauth2 is vulnerable to Server-Side Request Forgery in oauth2josejwksawsalbresolve function. The AWS ALB verifier reads both signer and kid from the unverified JWT header. If signer matches the configured ARN, kid is appended to albbaseurl without URL encoding or path sanitization, and the HTT...

5.1CVSS
Exploits0References3
NVD
NVD
added 3 days ago6 views

CVE-2026-13316

A flaw has been found in foreman when HTTP parameters are modified in httpproxiescontroller and httpproxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component...

4.4CVSS0.00109EPSS
Exploits0References2
EUVD
EUVD
added 3 days ago5 views

EUVD-2026-40281

A flaw has been found in foreman when HTTP parameters are modified in httpproxiescontroller and httpproxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component...

4.4CVSS5.7AI score0.00109EPSS
Exploits0References2
CVE
CVE
added 3 days ago10 views

CVE-2026-13316

Foreman (HTTP proxies: http_proxies_controller, http_proxy) is affected by a flaw that allows SSRF, enabling access to cloud metadata services in AWS/GCP/Azure environments via modified HTTP parameters. Root cause involves unvalidated/test_url parameters in Foreman’s configuration paths. Impact i...

4.4CVSS5.7AI score0.00109EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 3 days ago5 views

CVE-2026-13316

A flaw has been found in foreman when HTTP parameters are modified in httpproxiescontroller and httpproxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component. Mitigation Mitigation for this issue is either not availab...

4.4CVSS5.6AI score0.00109EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 3 days ago4 views

Amazon Linux 2023 : ecs-init (ALAS2023-2026-1906)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1906 advisory. Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder Tenable has extracted the preceding description block directly from the tested product security advisory. Note that Nessus ha...

5.8AI score
Exploits0References2
Chainguard
Chainguard
added 6 days ago7 views

GHSA-W6C6-C85G-MMV6 vulnerabilities

Vulnerabilities for packages: aactl, trivy-operator-fips, crossplane-fips, kubescape, ko-fips, kyverno-fips, kubescape-server-fips, crossplane, kyverno-notation-aws, ratify-fips, commercial-kyverno, policy-controller, policy-controller-fips, trivy-operator, ratify, trivy, kyverno, chainctl,...

5.8AI score
Exploits0
Chainguard
Chainguard
added 6 days ago9 views

CVE-2026-39395 vulnerabilities

Vulnerabilities for packages: aactl, trivy-operator-fips, crossplane-fips, kubescape, ko-fips, kyverno-fips, kubescape-server-fips, crossplane, kyverno-notation-aws, ratify-fips, commercial-kyverno, policy-controller, policy-controller-fips, trivy-operator, ratify, trivy, kyverno, chainctl,...

5.3CVSS5.8AI score0.00241EPSS
Exploits0
OSV
OSV
added last week6 views

MAL-2026-6522 Malicious code in @epsteinlovekids483/crossmint-wallets-sdk-pentest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e43e5a418541bb3e485010eba536ecc9f1483dba866af53ff4a760684409213 Package's main entry dist/index.cjs unconditionally requires dist/shai-hulud.js at module load. On require, the code harvests installer secrets —...

5.9AI score
Exploits0References9
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/24 11:4 p.m.11 views

Malicious code in leo-auth (npm)

The leo-auth npm package was compromised as part of the Miasma worm campaign targeting the LeoPlatform npm ecosystem. On June 24, 2026, 20 LeoPlatform packages were published within a 3-second window by a threat actor who had taken over the npm account czirker belonging to the LeoPlatform...

6.5AI score
Exploits0References3
OSV
OSV
added 2026/06/24 11:4 p.m.11 views

MAL-2026-6419 Malicious code in leo-cache (npm)

The leo-cache npm package was compromised as part of the Miasma worm campaign targeting the LeoPlatform npm ecosystem. On June 24, 2026, 20 LeoPlatform packages were published within a 3-second window by a threat actor who had taken over the npm account czirker belonging to the LeoPlatform...

6.4AI score
Exploits0References3
EUVD
EUVD
added 2026/06/24 1:20 p.m.8 views

EUVD-2026-38776

A cross-site request forgery CSRF vulnerability in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a81c3 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing AWS credentials stored in Jenkins...

5.4CVSS5.8AI score0.00128EPSS
Exploits0References1
NVD
NVD
added 2026/06/24 1:16 p.m.7 views

CVE-2026-13140

Stored Cross-Site Scripting in the exposed AWS API key store of Thinkst Applied Research Canarytokens. Anonymous exploitation requires knowledge of a random identifier. This issue affects Canarytokens: from Docker tag sha-4116b92cb before sha-f5aa5c4e, from Git commit 4116b92cb before f5aa5c4e...

2CVSS0.00185EPSS
Exploits0References1
CVE
CVE
added 2026/06/23 4:3 p.m.17 views

CVE-2026-12958

CVE-2026-12958 affects Language Servers for AWS due to missing symlink validation, allowing arbitrary file write outside the workspace trust boundary when a user opens a workspace containing a crafted symlink. The issue is reported across multiple sources (CVE entry, NVD, and related databases). ...

8.5CVSS6AI score0.00142EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/23 4:2 p.m.63 views

CVE-2026-12957 Arbitrary Code Execution in Language Servers for AWS

Improper trust boundary enforcement in Language Servers for AWS before version 1.65.0 on all supported platforms may allow a for arbitrary code execution. If a local user opens a maliciously crafted workspace, any commands within the project configuration files may be automatically executed. This...

8.5CVSS0.00118EPSS
Exploits0References2
CVE
CVE
added 2026/06/23 4:2 p.m.103 views

CVE-2026-12957

CVE-2026-12957 affects Language Servers for AWS prior to version 1.65.0. The root cause is improper trust boundary enforcement, which can lead to arbitrary code execution if a local user opens a malicious workspace and commands within project configuration files are executed automatically when pr...

8.5CVSS6.1AI score0.00118EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/23 4:2 p.m.21 views

EUVD-2026-38488

Improper trust boundary enforcement in Language Servers for AWS before version 1.65.0 on all supported platforms may allow a for arbitrary code execution. If a local user opens a maliciously crafted workspace, any commands within the project configuration files may be automatically executed. This...

8.5CVSS6.1AI score0.00118EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/23 12:0 a.m.8 views

PT-2026-51547

Name of the Vulnerable Software and Affected Versions Language Servers for AWS versions prior to 1.65.0 Description Improper trust boundary enforcement in the Model Context Protocol MCP server configurations within Amazon Q Developer allows for arbitrary code execution. If a local user opens a...

8.5CVSS6.4AI score0.00118EPSS
Exploits0References20
RedHat Linux
RedHat Linux
added 2026/06/22 9:1 p.m.9 views

openstack-keystone: OpenStack Keystone: Unauthorized access and privilege escalation via AWS signature validation flaw

A flaw was found in OpenStack Keystone. This vulnerability allows an attacker to obtain a valid OpenStack's Keystone token, leading to access to unauthorized resources or privilege escalation within the OpenStack instance via sending a valid AWS Amazon Web Services signature to the /v3/ec2tokens ...

7.5CVSS5.8AI score0.00196EPSS
Exploits0References6
Rows per page
Query Builder